Known Vulnerabilities
CVE-2023-23645
Improper Control of Generation of Code ('Code Injection') vulnerability in MainWP MainWP Code Snippets Extension allows Code Injection.This issue affects MainWP Code Snippets Extension: from n/a through 4.0.2.
CRITICAL
CVSS 9.9
Published May 17, 2024
CVE-2023-23650
Auth. (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in MainWP MainWP Code Snippets Extension plugin <= 4.0.2 versions.
MEDIUM
CVSS 6.5
Published Mar 23, 2023